CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2021/09/02 3:15 a.m.•10 views

CVE-2021-34732

A vulnerability in the web-based management interface of Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input...

6.1CVSS0.00153EPSS

Prion•added 2021/09/02 3:15 a.m.•9 views

Cross site scripting

4.3CVSS5.9AI score0.00153EPSS

Vulnrichment•added 2021/09/02 3:5 a.m.•11 views

CVE-2021-34732 Cisco Prime Collaboration Provisioning Cross-Site Scripting Vulnerability

6.1CVSS6.3AI score0.00153EPSS

Tenable Nessus•added 2020/12/21 12:0 a.m.•23 views

Cisco Prime Collaboration Provisioning Intermittent Hard-Coded Password (cisco-sa-20181003-cpcp-password)

According to its self-reported version number, the remote Cisco Prime Collaboration Provisioning server is prior to 12.1. It is, therefore, affected by a vulnerability in the install function that could allow an unauthenticated, remote attacker to access the administrative web interface using a...

9.8CVSS8.5AI score0.00767EPSS

Tenable Nessus•added 2020/08/18 12:0 a.m.•18 views

Cisco Prime Collaboration Provisioning Software SQL Injection (cisco-sa-pcp-sql-inj-22Auwt66)

According to its self-reported version, a vulnerability in the web-based management interface of Cisco Prime Collaboration Provisioning Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. Please see the included Cisco BIDs and Cisco...

7.2CVSS6.9AI score0.0038EPSS

Prion•added 2020/05/22 6:15 a.m.•14 views

Sql injection

A vulnerability in the web-based management interface of Cisco Prime Collaboration Provisioning Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. The vulnerability exists because the web-based management interface improperly validates...

6.5CVSS7.2AI score0.0038EPSS

Tenable Nessus•added 2020/03/19 12:0 a.m.•18 views

Cisco Prime Collaboration Provisioning Information Disclosure (cisco-sa-prim-collab-disclo-FAnX4DKB)

According to its self-reported version, Cisco Prime Collaboration Provisioning is affected by an information disclosure vulnerability in the web-based management interface because replies from the web-based management interface include unnecessary server information. An unauthenticated, remote...

5.3CVSS5.8AI score0.00881EPSS

NVD•added 2020/03/04 7:15 p.m.•10 views

CVE-2020-3193

A vulnerability in the web-based management interface of Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to obtain sensitive information about an affected device. The vulnerability exists because replies from the web-based management interface include...

5.3CVSS5.1AI score0.00881EPSS

OSV•added 2020/03/04 7:15 p.m.•0 views

CVE-2020-3193

5.3CVSS5.8AI score

Prion•added 2020/03/04 7:15 p.m.•27 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface. The vulnerability is due to insufficient validation of...

4.3CVSS5.9AI score0.00234EPSS

Prion•added 2020/03/04 7:15 p.m.•10 views

Design/Logic Flaw

5CVSS5.1AI score0.00881EPSS